$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa File: ef566134-dc37-415a-a1e3-05f23305a92b.roa (raw, json) Hash identifier: MQdKUs7iLuiDpSjuTK9jglEa2AM/8Z6qCZLLxRjVEko= Subject key identifier: 48:74:A3:5F:F9:D9:83:FC:DD:91:EF:84:CB:C5:D3:38:47:BF:AE:C5 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 6E33DC2F76CD886FE98B4ACB90C08DC1CC023DE9 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa Signing time: Tue 17 Feb 2026 00:10:09 +0000 ROA not before: Tue 17 Feb 2026 00:10:09 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 7224 IP address blocks: 172.96.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:33:dc:2f:76:cd:88:6f:e9:8b:4a:cb:90:c0:8d:c1:cc:02:3d:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Feb 17 00:10:09 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=f660b48cd14d5f444f4052115de23654d7fe3390bdddca8b2913045f1e23e53f, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f6:ce:01:8f:94:0e:e9:fc:bc:6e:ce:40:58: f4:ef:03:ee:21:5c:30:d9:ce:9c:1e:23:1e:71:c9: 21:9f:7a:5f:68:27:40:e5:dd:d5:76:51:6a:f4:38: 97:fa:9f:6b:52:90:7a:19:e3:89:f4:58:12:4b:5c: 16:2d:d5:ea:39:21:70:b2:89:88:62:5a:da:55:e6: cc:2d:be:f5:9e:2c:f0:5f:20:49:86:fb:ee:ac:71: 1c:b3:a0:50:92:91:67:49:8c:c4:65:43:f2:66:81: b9:e3:26:f7:a3:34:b1:fc:97:24:1b:f2:6e:46:48: c3:4f:c9:a5:bb:67:0d:9c:f2:85:58:1c:d9:3f:6d: 19:5e:7f:ba:b9:98:b0:6f:7a:a6:5e:56:c4:db:b5: 61:6f:47:ae:02:da:f6:1d:b0:ae:1f:19:07:75:8b: 3a:d9:79:b5:6a:6e:0f:9c:9c:75:e3:4b:b3:de:7a: 6b:e6:d6:aa:14:40:cb:d1:ae:fd:19:2f:6c:ac:25: 4b:bf:23:37:7b:9a:a7:27:1c:77:62:a2:c7:b7:7f: 5a:51:bc:83:4a:e5:db:76:98:a2:68:27:6a:18:a7: b4:cb:9b:67:d2:19:97:7e:fc:5b:90:f8:96:1d:35: 85:20:2b:47:92:40:d9:58:56:d1:b4:c7:8d:96:87: ca:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:74:A3:5F:F9:D9:83:FC:DD:91:EF:84:CB:C5:D3:38:47:BF:AE:C5 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.104.0/21 Signature Algorithm: sha256WithRSAEncryption a5:9d:e1:23:2d:62:b6:f2:fc:c7:c8:20:ba:82:f5:1f:c2:cf: ba:e8:f6:72:f0:fa:32:d4:17:a4:1a:8d:62:d6:c4:4c:c9:b0: be:42:7d:7c:cf:4f:68:9b:52:64:bb:32:51:5c:13:81:b3:e6: 4d:30:1d:59:8d:f6:e9:1c:24:b0:e0:db:7d:a7:90:16:75:2b: e6:85:b8:72:7d:c2:db:63:3a:a7:32:1e:b4:39:e6:53:91:a0: 4f:52:43:05:37:0d:79:a6:07:cc:57:c5:9d:17:74:e5:0d:8e: 37:11:d6:41:fb:db:ea:8b:e7:25:0d:34:e0:f9:5c:aa:74:64: b2:5d:7a:21:aa:b9:dc:7a:77:df:1c:5b:de:81:7a:7e:1a:78: c8:eb:b9:b0:24:71:4f:11:5e:54:9e:23:56:7c:bf:65:f0:19: dd:0c:86:5d:50:e0:c3:af:1b:01:50:d2:eb:17:7f:48:9b:14: 84:23:ee:07:8a:06:13:14:7b:06:53:4e:17:0c:6e:ff:c0:87: 87:37:c5:2c:90:bf:3c:79:71:ea:9c:ec:f5:c2:52:fc:8d:cf: 4a:5a:be:a2:c1:39:dc:cb:56:86:5a:39:1d:48:9e:34:cb:d2: 04:ce:6a:d3:37:cb:dd:17:03:ec:80:63:63:e2:ee:4b:6b:33: db:2f:bb:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbjPcL3bNiG/pi0rLkMCNwcwCPekwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjYwMjE3MDAxMDA5WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjYwYjQ4Y2QxNGQ1ZjQ0NGY0MDUyMTE1ZGUyMzY1NGQ3 ZmUzMzkwYmRkZGNhOGIyOTEzMDQ1ZjFlMjNlNTNmMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE9s4Bj5QO6fy8bs5AWPTvA+4hXDDZzpweIx5xySGfel9o J0Dl3dV2UWr0OJf6n2tSkHoZ44n0WBJLXBYt1eo5IXCyiYhiWtpV5swtvvWeLPBf IEmG++6scRyzoFCSkWdJjMRlQ/JmgbnjJvejNLH8lyQb8m5GSMNPyaW7Zw2c8oVY HNk/bRlef7q5mLBveqZeVsTbtWFvR64C2vYdsK4fGQd1izrZebVqbg+cnHXjS7Pe emvm1qoUQMvRrv0ZL2ysJUu/Izd7mqcnHHdiose3f1pRvINK5dt2mKJoJ2oYp7TL m2fSGZd+/FuQ+JYdNYUgK0eSQNlYVtG0x42Wh8pBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSHSjX/nZg/zdke+Ey8XTOEe/rsUwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4L2VmNTY2MTM0LWRjMzctNDE1YS1hMWUzLTA1ZjIzMzA1YTkyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsYGgwDQYJKoZIhvcNAQELBQADggEBAKWd4SMtYrby/MfIILqC9R/Cz7ro 9nLw+jLUF6QajWLWxEzJsL5CfXzPT2ibUmS7MlFcE4Gz5k0wHVmN9ukcJLDg232n kBZ1K+aFuHJ9wttjOqcyHrQ55lORoE9SQwU3DXmmB8xXxZ0XdOUNjjcR1kH72+qL 5yUNNOD5XKp0ZLJdeiGqudx6d98cW96Ben4aeMjrubAkcU8RXlSeI1Z8v2XwGd0M hl1Q4MOvGwFQ0usXf0ibFIQj7geKBhMUewZTThcMbv/Ah4c3xSyQvzx5ceqc7PXC UvyNz0pavqLBOdzLVoZaOR1InjTL0gTOatM3y90XA+yAY2Pi7ktrM9svu8c= -----END CERTIFICATE-----Generated at Mon Mar 2 04:32:46 2026 by rpki-client